Script updating gh-pages from 0cfcb8e. [ci skip]

tlswg · Oct 18, 2023 · 9343066 · 9343066
1 parent 78f1c7c
commit 9343066
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 11 deletions.
diff --git a/draft-ietf-tls-esni.html b/draft-ietf-tls-esni.html
@@ -2325,11 +2325,12 @@ <h4 id="name-handshaking-with-clienthello">
 when establishing the new transport connection or they can choose to use a
 different IP address if provided with options from DNS. ECH does not mandate
 any specific implementation choices when establishing this new connection.<a href="#section-6.1.6-4" class="pilcrow">¶</a></p>
-<p id="section-6.1.6-5">The retry configurations may only be applied to the retried connection. The
-client MUST NOT use retry configurations for connections beyond the retry.
-This avoids introducing pinning concerns or a tracking vector, should a
-malicious server present client-specific retry configurations in order to
-identify the client in a subsequent ECH handshake.<a href="#section-6.1.6-5" class="pilcrow">¶</a></p>
+<p id="section-6.1.6-5">The retry configurations are meant to be used for retried connections. Further
+use of retry configurations could yield a tracking vector. In settings where
+the client will otherwise already let the server track the client, e.g.,
+because the client will send cookies to the server in parallel connections,
+using the retry configurations for these parallel connections does not
+introduce a new tracking vector.<a href="#section-6.1.6-5" class="pilcrow">¶</a></p>
 <p id="section-6.1.6-6">If none of the values provided in "retry_configs" contains a supported version,
 or an earlier TLS version was negotiated, the client can regard ECH as securely
 disabled by the server, and it SHOULD retry the handshake with a new transport

diff --git a/draft-ietf-tls-esni.txt b/draft-ietf-tls-esni.txt
@@ -974,12 +974,13 @@ Table of Contents
    DNS.  ECH does not mandate any specific implementation choices when
    establishing this new connection.
 
-   The retry configurations may only be applied to the retried
-   connection.  The client MUST NOT use retry configurations for
-   connections beyond the retry.  This avoids introducing pinning
-   concerns or a tracking vector, should a malicious server present
-   client-specific retry configurations in order to identify the client
-   in a subsequent ECH handshake.
+   The retry configurations are meant to be used for retried
+   connections.  Further use of retry configurations could yield a
+   tracking vector.  In settings where the client will otherwise already
+   let the server track the client, e.g., because the client will send
+   cookies to the server in parallel connections, using the retry
+   configurations for these parallel connections does not introduce a
+   new tracking vector.
 
    If none of the values provided in "retry_configs" contains a
    supported version, or an earlier TLS version was negotiated, the